Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/Y87kN7OnpViKTP06qSMKAkgiQLs.roa
File: Y87kN7OnpViKTP06qSMKAkgiQLs.roa (raw, json)
Hash identifier: zAU79MiIqaVkfV9tkeu3TYSLFX/6R9FhM9SQaHdAouE=
Subject key identifier: 63:CE:E4:37:B3:A7:A5:58:8A:4C:FD:3A:A9:23:0A:02:48:22:40:BB
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018AF0EAC482F048F4651E058771B2B4D19D
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/Y87kN7OnpViKTP06qSMKAkgiQLs.roa
Signing time: Mon 02 Oct 2023 15:03:52 +0000
ROA not before: Mon 02 Oct 2023 15:03:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8708
IP address blocks: 185.223.81.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 27 Dec 2023 10:06:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:f0:ea:c4:82:f0:48:f4:65:1e:05:87:71:b2:b4:d1:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Oct 2 15:03:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=63cee437b3a7a5588a4cfd3aa9230a02482240bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:de:52:0a:6b:8e:f3:2c:ad:a4:73:05:48:3b:
30:2e:b9:45:e9:2e:03:4a:8a:21:31:90:41:bc:2c:
90:81:1a:aa:52:13:f4:15:c9:5b:9b:02:ce:2d:d0:
4f:44:8f:95:fc:44:c2:ae:b5:8a:24:67:b7:d7:26:
0c:67:f0:6f:9b:02:52:80:92:b2:cb:de:c6:e4:c9:
3c:1b:e3:42:e0:e0:3b:a7:5f:e0:cf:3d:ea:ca:e0:
ff:cd:d0:bf:19:f7:88:f7:a3:6b:ad:ce:ee:95:7b:
db:b0:71:cd:21:ea:86:34:34:28:ad:52:de:6e:28:
f3:fa:09:c4:eb:6d:6f:62:37:d1:e7:83:e7:d2:92:
9f:f1:fb:bd:fd:06:49:7f:4d:a9:cf:de:f7:a0:59:
6a:67:cc:e1:43:38:01:1e:9d:d9:d1:5b:a9:11:0f:
2d:1a:f0:b4:27:f3:b0:6b:03:8e:e7:40:2e:d6:ad:
12:bc:17:ef:b0:72:20:07:a2:41:cd:36:64:ea:d0:
15:10:5b:bd:21:0d:d8:55:a7:d1:f6:18:50:95:d0:
ad:fb:94:2e:35:a2:a6:63:da:6a:7e:4d:1f:51:04:
d5:eb:d4:6a:28:52:81:31:6d:7b:b4:2f:73:8f:2a:
14:83:83:36:48:4e:51:b2:44:2b:ba:3a:9b:20:1d:
b1:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:CE:E4:37:B3:A7:A5:58:8A:4C:FD:3A:A9:23:0A:02:48:22:40:BB
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/Y87kN7OnpViKTP06qSMKAkgiQLs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.223.81.0/24
Signature Algorithm: sha256WithRSAEncryption
41:6d:94:ed:af:ef:d1:82:45:55:61:9a:9f:f1:86:2f:ee:15:
4a:40:be:05:fb:58:1f:b1:6c:41:7f:b1:89:05:96:d6:11:52:
bb:62:eb:c4:e8:a0:67:51:84:8d:fa:a9:11:9b:4d:cc:13:62:
72:23:64:97:97:3c:0f:14:8b:d3:57:38:f8:96:b8:44:c5:91:
01:29:08:91:6c:a0:d9:c5:98:4a:dd:e5:6e:11:b4:12:4d:eb:
76:7b:7f:d3:d7:0d:60:17:0b:53:9d:56:48:a7:ff:75:6f:81:
43:e2:ca:e4:11:60:8e:71:fa:45:4f:0a:5c:cd:a5:c1:a9:e4:
6f:d0:01:a6:4f:96:70:b5:aa:5c:5e:fc:51:59:93:06:93:87:
ce:0f:3a:c6:5b:9a:a2:8c:1c:42:e5:4c:93:42:d8:e7:d3:76:
db:3a:e2:8f:9f:73:a4:7b:d1:f4:5c:59:50:63:69:4e:6a:05:
cd:aa:8c:28:fe:ed:76:82:5e:5e:79:09:fa:44:fc:27:af:ed:
97:a3:68:4d:c9:ca:75:e6:c1:73:de:e3:f4:78:50:45:93:d8:
87:80:79:7c:3a:35:e3:13:a8:70:e9:a9:2f:21:de:6f:5d:02:
02:89:0a:2d:86:6d:43:5a:28:87:1c:72:f9:7f:e5:e4:d7:d1:
7a:dc:e2:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:42 2024 by rpki-client on console-fra.rpki-client.org